PAY RANGE

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates.
$119,000.00 - $224,000.00

APPLICANTS WITH DISABILITIES

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

WELLS FARGO RECRUITMENT AND HIRING REQUIREMENTS:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process

Required Qualifications:

• 5+ years of cybersecurity experience or equivalent demonstrated through a combination of work experience, formal training, military experience, or education.
• 3+ years of experience in cyber defense investigation and incident response.
• 1+ years of experience in cyber threat engineering, preferably via SIEM, EDR, or UBA.
• Highly refined and professional communications, both verbal and written

Desired Qualifications:

• 1+ years of experience leveraging machine learning or anomaly-based detection methodologies to uncover either internal or external cyber threats.
• 1+ years of experience performing digital investigations involving insider threats.
• Certifications in one or more of the following: GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), GIAC Machine Learning Engineer (GMLE), or GIAC Certified Detection Analyst (GCDA)

Wells Fargo is seeking a Lead Information Security Engineer in Technology as part of Cybersecurity. Learn more about the career areas and lines of business at wellsfargojobs.com.
As a Lead Information Security Engineer for the Internal Cyber Operations team, you will spearhead efforts to modernize and enhance our cyber insider threat capabilities. This pivotal role involves working with a skilled team of engineers to implement cutting-edge technologies, drive strategic advancements, and build a world-class insider threat program. We are seeking a highly motivated leader passionate about protecting the organization from internal cyber threats through innovative threat detection, incident response, and proactive defense strategies.

In this role, you will:

• Work within a team of engineers to implement, maintain, and advance technologies focused on detecting and mitigating insider cyber threats, aligning with the organization’s internal security mission.
• Oversee daily operations in insider threat detection engineering, incident response, and threat hunting, emphasizing user behavior analytics (UBA) and endpoint monitoring.
• Collaborate with cross-functional cyber teams to address gaps in insider threat detection capabilities, ensuring seamless integration with broader security strategies.
• Direct long-term remediation efforts for insider threat incidents and internal cyber hygiene issues, conducting root cause analysis to prevent recurrence.
• Mentor team members on leveraging UBA and related tools to uncover insider threats, incorporating machine learning or anomaly-based detection to enhance identification accuracy.
• Investigate and respond to potential cyber incidents that could pose risk to the organization with a focus on insider cyber threats.

Required Qualifications:

• 5+ years of cybersecurity experience or equivalent demonstrated through a combination of work experience, formal training, military experience, or education.
• 3+ years of experience in cyber defense investigation and incident response.
• 1+ years of experience in cyber threat engineering, preferably via SIEM, EDR, or UBA.
• Highly refined and professional communications, both verbal and written.

Desired Qualifications:

• 1+ years of experience leveraging machine learning or anomaly-based detection methodologies to uncover either internal or external cyber threats.
• 1+ years of experience performing digital investigations involving insider threats.
• Certifications in one or more of the following: GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), GIAC Machine Learning Engineer (GMLE), or GIAC Certified Detection Analyst (GCDA).